Misery loves company, glad I’m not the only one scratching my head at this!
I like @Tom_Duffield’s approach! My solution was to use a subdomain (e.g. mcp.[domainname].com), because only pathnames seem to get the redacted treatment.
This makes me wonder how many people are using the custom MCP feature in Responses API.